Janak Kumar Shrestha

Kathmandu, Nepal

+977 9749407923

[email protected]

Portfolio Website

Blog

AWS Skill Profile

AWS Certified Solutions Architect and AWS Community Builder with hands-on experience in cloud infrastructure, CI/CD pipelines, and DevOps automation. Proficient in Docker, Kubernetes, Terraform, Ansible, and AWS services including EC2, S3, VPC, IAM, and RDS. Passionate about building resilient, automated systems that improve operational efficiency and accelerate software delivery.

Projects & Experience

Experience

Adex International Pvt. Ltd.

Lalitpur, Nepal • Nov 2025 — Dec 2025

AWS Solutions Architect Associate - Apprenticeship

Completed TekBay Academy's AWS Solutions Architect Associate program covering 18 modules — IAM, VPC, EC2, serverless, containers, storage, databases, and high availability — aligned with the AWS Well-Architected Framework, with guided and challenge hands-on labs.
Designed secure, scalable cloud architectures covering Auto Scaling, Load Balancing, disaster recovery, cost optimization, and loosely coupled architectures using SQS, SNS, and EventBridge.

Datahub Nepal Pvt. Ltd.

Lalitpur, Nepal • May 2025 — Jul 2025

System Administrator - Intern

Managed and configured client Windows and Linux cloud servers, handling VPC creation, subnetting, and compute resource upgrades (CPU, memory, disk) while monitoring infrastructure health using Zabbix to ensure client SLA compliance.
Provided IT support resolving server outages, connectivity issues, and performance incidents, with hands-on exposure to VMware ESXi hypervisor administration and core cloud infrastructure components.

Broadway Infosis Pvt. Ltd.

Kathmandu, Nepal • May 2025 — Jul 2025

DevOps Training

Built a strong DevOps foundation covering Linux, networking, Git, and RDBMS, with hands-on experience in Docker and Kubernetes, multi-container apps, and CI/CD pipelines using Jenkins.
Automated infrastructure provisioning with Ansible and Terraform, and deployed scalable applications on AWS using EC2, VPC, S3, Load Balancers, and IAM.

Projects

Centralized Monitoring, Logging & Alerting System

Built a Dockerized client-server observability platform using Prometheus, Grafana, Loki, and Alertmanager with centralized .env-driven config for rapid multi-node deployment.
Implemented intelligent email alerting for critical events, integrated AWS S3 for log storage, EC2 Service Discovery for automated target onboarding, and multiple exporters (Node, cAdvisor, Nginx, MongoDB, Jenkins) with pre-built Grafana dashboards.

CI/CD Pipeline via Jenkins for MERN Application

Automated CI/CD pipeline using Jenkins to build and deploy a MERN stack app, with Nginx as a reverse proxy for secure, high-performance traffic management.

Quickmail - MERN Stack Email Service

Built a Dockerized MERN email service with Gmail SMTP, enterprise-grade security (helmet, rate-limiting), flexible MongoDB persistence, and a unique "Ghost Mode" for zero-trace messaging.

Enterprise Linux Storage Management with LVM

Implemented LVM to dynamically manage server storage, migrating `/var/log` to a dedicated logical volume to prevent root partition saturation and ensure system stability.

Secure Multi-Protocol Remote Access with Cloudflare Tunnel

Configured Cloudflare Tunnel with persistent systemd services to securely expose SSH, RDP, and Node.js services without open inbound ports, enforcing zero-trust network access.

Multi-Environment Remote Desktop Infrastructure with XRDP

Deployed XRDP with 7 desktop environments (KDE, GNOME, XFCE) on a single Ubuntu server, using custom .xsession configs for secure, low-latency remote graphical access.

Self-Hosted Cloud Collaboration Platform with Nextcloud AIO

Deployed Nextcloud AIO on Docker with Office and Talk containers behind an automated reverse proxy, enabling self-hosted document collaboration and secure video conferencing.

MySQL Master-Slave Replication for High Availability

Implemented MySQL Master-Slave replication for read scalability and redundancy, resolving authentication issues with the native password plugin for stable cross-VPC replication.

Infrastructure as Code with Terraform on AWS

Provisioned AWS EC2 instances and security groups with Terraform, automating SSH key pair authentication and infrastructure outputs for immediate, secure administrative access.

Centralized Network Storage with NFS

Deployed NFS infrastructure to centralize storage across Linux servers with granular access controls and firewall rules restricting client access to trusted subnets.

Multi-Master Database Clustering with MariaDB Galera

Architected a 3-node MariaDB Galera Cluster with synchronous active-active replication and wsrep/firewall configurations for automatic node recovery and zero-lag data consistency.

Production WordPress Deployment with Docker & SSL

Deployed WordPress with Docker Compose and a MariaDB backend, configured behind an Apache reverse proxy with automated Let's Encrypt SSL renewal.

Traditional LAMP Stack with WordPress & phpMyAdmin

Deployed a full LAMP stack on Debian with Apache virtual hosts, phpMyAdmin, and WordPress CMS with proper file permissions for secure web hosting.

Containerized Django Application Deployment on AWS EC2

Deployed a Django app on AWS EC2 using Docker with a multi-stage build strategy, security group configuration, and nohup-based process management for continuous availability.

High-Availability Load Balancing with AWS ALB & ACM

Architected a Multi-AZ infrastructure with AWS ALB and end-to-end SSL via AWS Certificate Manager and Cloudflare DNS for fault-tolerant, secure traffic distribution.

Scalable Load Balancing with Nginx on AWS EC2

Configured Nginx as a reverse proxy load balancer across AWS EC2 instances with SSL termination and security group rules for horizontal scaling and fault tolerance.

Full-Stack PHP Application Deployment with Docker & Nginx

Deployed a containerized PHP/MySQL app on AWS EC2 with Docker Compose, Nginx reverse proxy, and automated Let's Encrypt SSL with custom domain integration.

Container Orchestration with Docker Compose for PHP Applications

Architected a multi-container PHP/MariaDB app with Docker Compose, implementing service networking, persistent volumes, health checks, and automated database initialization.

Infrastructure as Code with Terraform on Azure

Provisioned Azure VMs using Terraform IaC with service principal authentication, automated networking, SSH key auth, and full infrastructure lifecycle management.

Hybrid Cloud Storage & Migration with AWS Storage Gateway

Deployed AWS S3 File Gateway to mount NFS shares on on-premises Linux servers, with Cross-Region Replication and S3 Lifecycle policies for automated redundancy and cost optimization.

Deploying Scalable Relational Database Infrastructure

Provisioned a high-availability MySQL RDS instance in a secure VPC with AWS Secrets Manager for automated credential management and secure app connectivity.

Enterprise Database Migration & Modernization

Executed a zero-data-loss migration from legacy MariaDB to Amazon RDS, re-architecting the application layer to leverage managed DB services and reduce operational overhead.

Architecting a Secure Virtual Private Cloud (VPC)

Engineered a custom Amazon VPC with segmented public/private subnets, Internet Gateways, and Route Tables to enforce network security boundaries and isolate private resources.

Establishing Secure Inter-VPC Peering & Network Monitoring

Established private VPC Peering with Flow Logs and complex Route Tables to enable secure cross-network data transfer and audit traffic between application and database tiers.

Architecting Scalable & Highly Available Web Infrastructure

Designed a fault-tolerant Multi-AZ architecture with Auto Scaling Groups, ALB, and CloudWatch-driven scaling policies for cost-efficient, high-availability web applications.

Infrastructure as Code Automation with AWS CloudFormation

Automated multi-tier infrastructure deployment (VPC, Application) using layered AWS CloudFormation templates with full lifecycle management and EBS snapshot retention policies.

Automating Multi-Region Infrastructure with CI/CD & IaC

Built modular CloudFormation templates and an AWS CodePipeline CI/CD workflow to automate stack updates and enable seamless multi-region deployments.

Architecting Decoupled Event-Driven Applications

Refactored a monolithic app into a decoupled microservices architecture using Amazon SQS and SNS, with S3-triggered event-driven workflows for asynchronous image processing.

Building Scalable Serverless Architectures on AWS

Built a serverless inventory system using AWS Lambda, S3, DynamoDB, and SNS for automated data ingestion, real-time low-stock alerts, and serverless dashboard visualization.

Education

JMC College affiliated with TU

Kathmandu, Nepal • 2020 — 2025

Bachelor in Computer Applications

Completed 3 major projects: Dictionary application, Pong 2D Android game, and HAMRO BANK: a signature forgery detection system using machine learning for banking security.

Pentagon International College

Kathmandu, Nepal • 2018 — 2019

Higher Secondary Education

Studied in Science (Physical Group) with a focus on Physics and Mathematics.

Certifications & Badges

AWS Certified Solutions Architect – Associate (SAA-C03)

LFS167: Introduction to Jenkins

Linux Foundation

AWS Academy Graduate - Cloud Foundations - Training Badge

AWS Academy Graduate - Cloud Security Foundations - Training Badge

AWS Educate Getting Started with Networking - Training Badge

LFS101: Introduction to Linux

Linux Foundation

Networking Basics

DevOps Engineer

Broadway Infosys

Full Stack Development

Additional Information

Profiles

LinkedIn GitHub Credly Blog Website

Awards

MSS Science exhibution 2074
2nd place in quiz competition - AWS Secure the Cloud Event 2025

IT Skills

Tmux
Git
Linux
Docker & Kuberneties
Database Operation
Web Hosting
DNS Management
SSL/TLS Certificate
CI/CD
Jenkins
Github Actions
Ansible
Terraform
Bash Scripting
Zabbix
Nextcloud
NFS & LVM
Server Management
Prometheus & Grafana
Grafana alloy & loki
Nginx
n8n

References

Joseph Lama

Senior DevOps Engineer

[email protected]

+977-9801856310

Rojan Sedhai

AWS Solutions Architect/Cloud Trainer at Adex

[email protected]

+977-9702036160